Compare baseline modifications

in order to detect new defects during the development process.

Define checkpoints and audits

tailored to each type of project or change request.

Check control points continuously

during the construction or maintenance phases to ensure that applications do not degrade over time after modifications.

Action plans to reduce your risks

Set up
your goals

Determine the effort required by the development teams or the rating you want to achieve

Follow
up

Check out the progress & acomplishment of your goals, and avoid deviations

Take
action

Kiuwan suggests to you where to act and to what extent. Line of code level, if needed!

Kiuwan & OWASPAmazing results on OWASP Benchmark

The OWASP Benchmark is a test suite designed to evaluate the coverage and accuracy of automated vulnerability detection tools. The Benchmark contains thousands of test cases that are fully runnable and exploitable. It considers 11 different types of vulnerabilities, including several injection types such as XSS, weak encryption or trust boundary. For every type, the test cases have real vulnerabilities (true positives) and fake vulnerabilities (false positives) to challenge the tools.

We have run Kiuwan on the OWASP Benchmark test cases and here you have the results. We have added them to the comparison graph published in the OWASP Benchmark website, which include open source and commercial tools. Kiuwan is right up there detecting almost 100% of true positives.